Rails and mod_auth_tkt

Searching for:
 
Neue Räumlichkeit
Stefan Ammon
Gutzkowstraße 7HH
Frankfurt am Main
++49 69 34 87 62 27
ammon@neue-raeumlichkeit.net
  • Type: Single Sign-On (SSO) across Apaches and machines using Ruby On Rails login interfaces
  • Base: Authentication: mod_auth_tkt module for Apache, Authorisation: Ruby on Rails
  • Genesis Date: 01/10/2008

We needed a Single Sign-On (SSO) solution for multiple Apache machines. We discovered the mod_auth_tkt module and it was exactly what we wanted. A cookie is generated during the authorisation process and signed with a shared secret. This shared secret (aside with the mod_auth_tkt module) is the only requirement to resctrict access to multiple Apache machines to users, who have a valid ticket stored in a signed cookie.

But we wanted to use Ruby on Rails to generate this cookie.

Examples were only provided in Perl and PHP, but the ticket format and signing algorithm is very well documented. So we wrote some functions to generate the signed cookie string and to generate the cookie itself.

Plugin integration

We usually use Acts as Authenticated and acl_system2 for the authentication process, so we integrated our library into this plugin. Only six additional lines in two files where needed therefor. Which lines to add and where to add is described in the readme file that comes with the auth_tkt_rails library.

Useful plugins

The integration is described in the auth_tkt_rails readme file.

Download auth_tkt_rails

Feel free to contact the developer.

 
MESO / Digital Interiors / Web Scapes / Image Spaces | Impressum / Datenschutz | Copyright © 2007 by MESO.net